Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=workspacenearbyinbrussels629886.icu
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 09, 2026
Valid Until
April 09, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:49:71:A0:B1:88:B0:6A:AC:62:14:95:19:2C:84:EB:7B:76:1A:75:6B:8E:F9:C7:C3:DC:53:1F:32:72:B3:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
slaaf.com
*.slaaf.com
astroboy.bet
*.astroboy.bet
badcreditautoloansli.com
*.badcreditautoloansli.com
*.bbs.badcreditautoloansli.com
*.blog.badcreditautoloansli.com
*.ww25.badcreditautoloansli.com
bazarek.com
*.bazarek.com
*.old.bazarek.com
boheme.life
*.boheme.life
bosherprusguiba.sbs
*.bosherprusguiba.sbs
bymarriott.com
*.bymarriott.com
catracas.com
*.catracas.com
centrodetrabajo.com
*.centrodetrabajo.com
derylo.com
*.derylo.com
*.wildcard.derylo.com
dictionarty.com
*.dictionarty.com
dnldzlthsu.com
*.dnldzlthsu.com
firsttimehomebuyerapplication784155.icu
*.firsttimehomebuyerapplication784155.icu
*.assine.grsuplementos.com
*.black.grsuplementos.com
*.blackk.grsuplementos.com
*.com.grsuplementos.com
*.descontos.grsuplementos.com
*.direto-de-fabrica.grsuplementos.com
*.fabrica-premium.grsuplementos.com
*.feirao.grsuplementos.com
grsuplementos.com
*.grsuplementos.com
*.gw.grsuplementos.com
*.imperdivel.grsuplementos.com
*.liquida.grsuplementos.com
*.loja.grsuplementos.com
*.nutricao.grsuplementos.com
*.oferta.grsuplementos.com
*.premium.grsuplementos.com
*.promo1.grsuplementos.com
*.treino.grsuplementos.com
*.verao.grsuplementos.com
healthcentralis.com
*.healthcentralis.com
horas188.info
*.horas188.info
mentamedia.eu
*.mentamedia.eu
*.personal.mentamedia.eu
*.reenergy.mentamedia.eu
*.shop.mentamedia.eu
muzaa.ru
*.muzaa.ru
paknejad.com
*.paknejad.com
petarung138new.click
*.petarung138new.click
*.www.petarung138new.click
relavantradio.com
*.relavantradio.com
*.ww16.relavantradio.com
*.ww25.relavantradio.com
*.www.relavantradio.com
stall.com.au
*.stall.com.au
telehealthsolutions.com.au
*.telehealthsolutions.com.au
thehin.net
*.thehin.net
*.mail.totalperformancefitness.co.uk
totalperformancefitness.co.uk
*.totalperformancefitness.co.uk
vallorani.com
*.vallorani.com
workspacenearbyinbrussels629886.icu
*.workspacenearbyinbrussels629886.icu
yorukler.com
*.yorukler.com
zunnel.com
*.zunnel.com
Other domains in certificate